Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/gRm-9I-dy5whwy4JSvE90lAF04k.roa
File: gRm-9I-dy5whwy4JSvE90lAF04k.roa (raw, json)
Hash identifier: 4U9CEyHouG3TVebtWrTdzFYovnc/oKCid0iB3oL82xE=
Subject key identifier: 81:19:BE:F4:8F:9D:CB:9C:21:C3:2E:09:4A:F1:3D:D2:50:05:D3:89
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01882683952D3EEE70E1B183F94CDCF83732
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/gRm-9I-dy5whwy4JSvE90lAF04k.roa
Signing time: Tue 16 May 2023 21:42:17 +0000
ROA not before: Tue 16 May 2023 21:42:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 94.131.48.0/20 maxlen: 24
94.131.64.0/20 maxlen: 24
95.164.128.0/20 maxlen: 24
95.164.240.0/21 maxlen: 21
95.164.44.0/22 maxlen: 22
94.131.24.0/22 maxlen: 24
95.164.200.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 18 Sep 2023 13:09:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:26:83:95:2d:3e:ee:70:e1:b1:83:f9:4c:dc:f8:37:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: May 16 21:42:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8119bef48f9dcb9c21c32e094af13dd25005d389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f9:20:53:9c:dc:f8:4b:ef:e9:0a:ca:81:e8:
87:53:c2:c3:1f:f9:86:d2:0b:be:d0:be:17:4c:87:
b0:db:c8:5e:72:52:3f:37:46:49:54:46:e6:3c:9f:
b0:4b:b1:0f:7f:de:2c:ec:3d:2e:8a:13:5e:fb:a7:
40:b4:2c:8a:f6:7c:df:2a:bc:de:1c:30:b2:28:75:
c1:fb:00:a6:02:ad:df:c5:8f:62:58:fc:7e:71:b6:
b5:e0:4a:fb:1e:0c:00:84:60:c6:74:12:ba:a7:92:
3b:27:14:61:1d:f8:65:0c:54:9a:59:5d:b5:d2:f9:
a9:bb:6f:c2:7b:a1:9c:11:f1:05:80:65:fb:c7:b2:
1a:4f:8f:7d:07:b2:bf:7c:67:01:3b:40:1e:7a:20:
35:ff:bb:92:7a:9a:5c:e9:1d:f2:18:9c:47:c3:bf:
4a:5e:c4:01:05:2d:79:6d:7a:1c:10:39:66:bd:c0:
71:70:68:46:42:d5:62:b0:a9:1e:3c:b4:fc:cc:3f:
75:68:36:21:c9:d0:e6:51:fb:d1:83:f6:52:7e:ec:
fa:d9:45:1b:db:8b:3e:5e:04:c4:54:7c:5f:4b:46:
eb:1a:4b:d0:90:51:25:31:bb:a4:6c:19:28:d2:8c:
7f:33:75:4a:0b:d0:55:13:c2:df:6f:27:78:97:e9:
4a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:19:BE:F4:8F:9D:CB:9C:21:C3:2E:09:4A:F1:3D:D2:50:05:D3:89
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/gRm-9I-dy5whwy4JSvE90lAF04k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.24.0/22
94.131.48.0-94.131.79.255
95.164.44.0/22
95.164.128.0/20
95.164.200.0/21
95.164.240.0/21
Signature Algorithm: sha256WithRSAEncryption
81:01:57:f2:38:42:0f:85:10:65:e4:f4:0c:cb:39:b6:91:38:
46:c4:77:5d:6c:19:cc:81:e4:05:f2:9c:3a:75:b1:0a:f0:47:
3e:09:40:90:1c:14:dd:60:7b:50:89:16:5f:12:18:ab:c5:45:
52:77:17:65:40:57:4d:42:f1:ab:d6:1c:a0:55:66:d4:65:ad:
d7:b8:30:08:b6:27:21:a9:33:e8:ba:bd:e5:d4:03:e4:57:dd:
b2:3d:9a:46:2d:eb:e1:6f:45:0f:a9:33:16:76:e9:f9:18:e6:
2d:63:b8:59:f6:25:e6:85:f9:58:0d:74:d4:61:d4:66:e6:59:
ef:a9:aa:55:05:a5:a7:22:29:93:2e:ac:c4:57:34:2e:fd:4d:
f2:35:82:c2:c2:73:a0:3e:6b:6a:9d:2b:1f:23:64:a0:7b:03:
02:be:3c:11:30:0d:78:48:0c:d6:4e:83:97:ae:65:2e:d0:8c:
a6:63:56:83:ec:a1:0b:44:ee:11:5d:79:48:e4:48:29:9a:68:
89:3d:1f:7c:4a:16:5d:ca:62:90:8a:91:96:db:16:92:e1:21:
33:36:15:d0:e3:ba:10:22:3d:e0:9b:04:bd:66:05:35:aa:3b:
0b:f0:91:e6:56:c0:1e:b6:d9:37:f7:2a:15:49:fb:4f:61:a7:
bf:8d:21:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org